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Abstract — Cloud computing makes customers to outsource 
large-scale computational tasks to the cloud, where massive 
computational power can be easily utilized in a pay-per-use 
manner with limited computational resources. However, 
security is the major concern especially when end-user's 
confidential data are processed and produced during the 
computation. Thus, there must be a mechanism which not only 
protect sensitive information by enabling computations with 
encrypted data, but also protect customers from malicious 
behaviors by validating the computation result.To achieve 
realistic efficiency, our mechanism design explicitly decomposes 
the LP computation outsourcing into public LP solvers running 
on the cloud and private LP parameters owned by the customer. 
The resulting flexibility allows us to explore appropriate 
security/efficiency tradeoff via higher-level abstraction of LP 
computations than the general circuit representation.To validate 
the computation result, we further explore the fundamental 
duality theorem of LP computation and derive the necessary and 
sufficient conditions that correct result must satisfy. 

Index Terms — cloud computing, outsourcing , end-user’s 
confidential data, linear programming(LP), Encryption, public 
LP solvers, private LP parameters. 


I. Introduction 

Cloud Computing provides convenient on demand network 
access to a shared pool of configurable computing resources 
that can be rapidly deployed with great efficiency and 
minimal management overhead. One fundamental advantage 
of the cloud paradigm is computation outsourcing, where the 
computational power of cloud customers is no longer limited 
by their resource-constraint devices. By outsourcing the 
workloads into the cloud, customers could enjoy the literally 
unlimited computing resources in a pay-per-use manner 
without committing any large capital outlays in the purchase 
of hardware and software and/or the operational overhead 
there in. Despite the tremendous benefits, outsourcing 
computation to the commercial public cloud is also depriving 
customers’ direct control over the systems that consume and 
produce their data during the computation, which brings in 
new security concerns and challenges towards this promising 
computing model. On the one hand, the outsourced 
computation workloads often contain sensitive information, 
such as the business financial records, proprietary research 
data, or personally identifiable health information etc. To 
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combat against unauthorized information leakage, sensitive 
data have to be encrypted before outsourcing so as to provide 
end- to end data confidentiality assurance in the cloud and 
beyond. 

To validate the computation result, we utilize the fact that the 
result is from cloud server solving the transformed LP 
problem. 
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Fig 1: Architecture of secure outsourcing linear 
programming 

problems in Cloud Computing 


II. Modules Description 


A. Mechanism Design Framework 

B. Basic Techniques 

C. Enhanced Techniques via Affine Mapping 

D. Result Verification 


A. Mechanism Design Framework 

We propose to apply problem transformation for mechanism 
design. The general framework is adopted from a generic 
approach, while our instantiation is completely different and 
novel. In this framework, the process on cloud server can be 
represented by algorithm ProofGen and the process on 
customer can be organized into three algorithms (KeyGen, 
ProbEnc, ResultDec). These four algorithms are summarized 
below. 

• KeyGen (l k ) — > {K}. This is a randomized key generation 
algorithm which takes a system security parameter k, and 
returns a secret key K that is used later by customer to encrypt 
the target LP problem. 
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• ProbEnc (K,<f>) — > [ (f)K }. This algorithm encrypts the input 
tuple <[) into <f>K with the secret key K. According to problem 
transformation, the encrypted input (f>K has the same form as 
<[), and thus defines the problem to be solved in the cloud. 

• ProofGen (<j>K) — > {(y,F) } . This algorithm augments a 
generic solver that solves the problem c|>K to produce both the 
output y and a proof T. The output y later decrypts to x, and T 
is used later by the customer to verify the correctness of y or x. 

• ResultDec (K, <f>, y, T) — > {x,l}. This algorithm may choose 

to verify either y or x via the proof T. In any case, a correct 
output x is produced by decrypting y using the secret K. The 
algorithm outputs Iwhen the validation fails, indicating the 
cloud server was not performing the computation faithfully. 

B. Basic Techniques 

Before presenting the details of our proposed mechanism, we 
study in this subsection a few basic techniques and show that 
the input encryption based on these techniques along may 
result in an unsatisfactory mechanism. However, the analysis 
will give insights on how a stronger mechanism should be 
designed. Note that to simplify the presentation, we assume 
that the cloud server honestly performs the computation. 
Hiding equality constraints(A, b): First of all, a randomly 
generated m x m non-singular matrix Q can be part of the 
secret key K. The customer can apply the matrix to Eq.for the 
following constraints transformation. 

Ax = b => A'x = b' 

Where A' = QA and b' = Qb. 

C. Enhanced Techniques via Affine Mapping 

To enhance the security strength of LP outsourcing, we must 
be able to change the feasible region of original LP and at the 
same time hide output vector x during the problem input 
encryption. We propose to encrypt the feasible region of ® by 
applying an affine mapping on the decision variables x. This 
design principle is based on the following observation: 


Here t original , t cloud , and t customer denotes the cloud-side original 
problem solving time, cloud-side encrypted problem solving 


ideally, if we can arbitrarily transform the feasible area of 
problem ® from one vector space to another and keep the 
mapping function as the secret key, there is no way for cloud 
server to learn the original feasible area information. Further, 
such a linear mapping also serves the important purpose of 
output hiding. 

D. Result Verification 

Till now, we have been assuming the server is honestly 
performing the computation, while being interested learning 
information of original LP problem. However, such semi 
honest model is not strong enough to capture the adversary 
behaviors in the real world. In many cases, especially when 
the computation on the cloud requires a huge amount of 
computing resources, there exists strong financial incentives 
for the cloud server to be “lazy”. They might either be not 
willing to commit service-level-agreed computing resources 
to save cost, or even be malicious just to sabotage any 
following up computation at the customers. Since the cloud 
server promises to solve the LP problem _K = ( A', B', b', c'), 
we propose to solve the result verification problem by 
designing a method to verify the correctness of the solution y 
of _K. The soundness condition would be a corollary 
thereafter when we present the whole mechanism in the next 
section. Note that in our design, the workload required for 
customers on the result verification is substantially cheaper 
than solving the LP problem on their own, which ensures the 
great computation savings for secure LP outsourcing. 

The LP problem does not necessarily have an optimal 
solution. There are three cases as follows. 

•Normal: There is an optimal solution with finite objective 
value. 

• Infeasible: The constraints cannot be all satisfied at the same 
time. 

• Unbounded: For the standard form in Eq,the objective 
function can be arbitrarily small while the constraints are all 
satisfied. 

III. Preliminary Performance Results 


time, and customer-side computation time, respectively. The 
asymmetric speedup captures the customer efficiency gain via 


Benchmark 

Original Problem 

Encrypted Problem 

Asymmetric Speedup 

Cloud Efficiency 


size 

^original (SCC) 

tcloud (sec) 

tcustomer (see) 

L Mriatnal 

^customer 

•oriainal 

1 

m = 50, n = 60 

0.167 

0.170 

0.007 

26.5 x 

0.981 

L 

m = 100, n = 120 

0.227 

0.239 

0.005 

46.7 x 

0.956 

3 

m = 200, n = 240 

0.630 

0.613 

0.017 

37.3 x 

1.037 

4 

m = 400, n = 480 

3.033 

3.671 

0.090 

33.5 x 

0.835 

5 

m = 800, n = 960 

19.838 

23.527 

0.569 

34.9 x 

0.851 

6 

m = 1600, n = 1920 

171.862 

254.012 

4.015 

42.6 x 

0.690 

7 

m = 3200, n = 3840 

1757.570 

2661.360 

47.602 

36.4 x 

0.745 


Table 1: Preliminary Performance Results 
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LP outsourcing. The cloud efficiency captures the overall 
computation cost on cloud introduced by solving encrypted 
LP problem, which should ideally be as closer to 1 as 
possible. 

IV. Conclusion 

In this paper, for the first time, we formalize the problem of 
securely outsourcing LP computations in cloud computing, 
and provide such a practical mechanism design which fulfills 
input/output privacy, cheating resilience, and efficiency. By 
explicitly decomposing LP computation outsourcing into 
public LP solvers and private data, our mechanism design is 
able to explore appropriate security/efficiency tradeoffs via 
higher level LP computation than the general circuit 
representation. We develop problem transformation 
techniques that enable customers to secretly transform the 
original LP into some arbitrary one while protecting sensitive 
input/output information. We also investigate duality theorem 
and derive aset of necessary and sufficient condition for result 
verification. Such a cheating resilience design can be bundled 
in the overall mechanism with close-to-zero additional 
overhead. Both security analysis and experiment results 
demonstrates the immediate practicality of the proposed 
mechanism. 
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